tag:blogger.com,1999:blog-13777170.post115247566592014411..comments2024-03-11T02:35:50.848-05:00Comments on grand stream dreams: (w)Hole Lot of Firewall InfoUnknownnoreply@blogger.comBlogger9125tag:blogger.com,1999:blog-13777170.post-45515174399810732292007-12-14T05:43:00.000-06:002007-12-14T05:43:00.000-06:00Here’s a Broadband Video that will show you how to...Here’s a <A HREF="http://www.broadband.co.uk/broadband-video.jsp" REL="nofollow">Broadband Video</A> that will show you how to check availability by postcode, how perform a <A HREF="http://www.broadband.co.uk/broadband-speed-test.jsp" REL="nofollow">broadband speed test</A> and where to find <A HREF="http://www.broadband.co.uk/forums/" REL="nofollow">broadband forums</A> to answer your questions. There are also offers for <A ? HREF="http://www.broadband.co.uk/provider.jsp?i=59&d=164" REL="nofollow">PlusNet Broadband</A>. <BR/><BR/>Here is a broadband beginners guide and below are common broad band questions;<BR/><A HREF="http://www.broadband.co.uk/guide.jsp?section=1" REL="nofollow">>What is Broadband?</A><BR/><A HREF="http://www.broadband.co.uk/guide.jsp?section=2" REL="nofollow">>Types of Connections?</A><BR/><A HREF="http://www.broadband.co.uk/guide.jsp?section=3" REL="nofollow">>Connection speeds and download limits</A><BR/><A HREF="http://www.broadband.co.uk/guide.jsp?section=4" REL="nofollow">>How to compare ISP’s</A>Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-54000029937068264822007-01-23T09:32:00.000-06:002007-01-23T09:32:00.000-06:00I'm not a programmer or high-level firewall expert...I'm not a programmer or high-level firewall expert...not by any means.<br /><br />You've touched on one of the reasons why I think it is so important to get a wide range of background before making a decision.<br /><br />I can't say whether or not Comodo (or any of the other's for that matter) specifically design their firewalls to pass known and popular leak-tests. However that is always a possibility folks need to keep in mind.<br /><br />You've kinda beat me to the punch here, but I have a collection of updated firewall related links I'm planning to post very soon.<br /><br />Information on the <a href="http://www.matousec.com/">Matousec</a> website is very helpful as you have pointed out.<br /><br />I've been a bit "disappointed" to hear about the vulnerabilities reported recently in some of the more popular firewalls of late by Matousec:<br /><br /><a href="http://www.matousec.com/info/?news=63-Another_method_to_bypass_Outpost_Self_Protection">Another method to bypass Outpost Self-Protection (2007/01/15 20:57)</a><br /><br /><a href="http://www.matousec.com/info/?news=61-Kerio_firewall_vulnerable_to_DLL_injection">Kerio firewall vulnerable to DLL injection (2007/01/01 13:45)</a><br /><br /><a href="http://www.matousec.com/info/?news=60-Comodo_Firewall_not_much_better_than_others">Comodo Firewall not much better than others (2006/12/19 17:49)</a><br /><br /><a href="http://www.matousec.com/info/?news=58-Bypassing_process_identification_of_several_personal_firewalls_and_HIPS">Bypassing process identification of several personal firewalls and HIPS (2006/12/15 18:53)</a><br /><br />FYI, I'm still running all our systems safely behind a configured hardware based firewall/router....and right now have Kerio on both of my systems. My other family members find it much easier to deal with than Jetico...and it runs "lightly".<br /><br />Which points out that for most users--especially non-techie ones--one of the most important issues in picking a personal software based firewall is to find one that has a good overall ballance between two key factors: outbound/inbound security design and function and an interface/alert prompting that makes it useful.<br /><br />If it is highly effective--but downright confusing, a home user might abandon it. If it is so simple--it might also be too weak to be effective.<br /><br />I am looking forward to a final release of <a href="http://www.jetico.com/jpf2.htm">Jetico Personal Firewall version 2 (beta)</a> as the newest version is currently still in Beta.<br /><br />Finally, like I'm sure you know, firewalls should be just one layer in a pc-security defense line. Every system should have (in my opinion) a firewall, an active/updated AV scanner, maybe a process/registry guard system. And then the user should run frequent anti-malware/rootkit scans as well. Hopefully this model will balance out and protect weaknesses any one component might have by itself.<br /><br />It's a bit of work, but there is lots of junk out there trying to creep onto home user's system and compromise it for its own ends....<br /><br />Thanks for stopping by and keep an eye out for the updated firewall post soon. <br /><br />And I haven't figured the Torpark/ZA issue either...but since I'm now using Sunbelt's Kerio...I haven't had any more issues, nor did I with Jetico.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-32870680111827833362007-01-22T20:32:00.000-06:002007-01-22T20:32:00.000-06:00From what I've read, the reason that Comodo passes...From what I've read, the reason that Comodo passes all leak tests, is that the design is based mainly on such tests, so it is specifically geared to pass them. This doesn't neccessarily mean that it's more secure against real threats - the detailed report I read suggested that some of the others may have a more robust security model. Check out http://www.matousec.com/projects/windows-personal-firewall-analysis/ for some interesting views<br /><br />Still trying to track down the torpark/zonealarm issue...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1159406653511087362006-09-27T20:24:00.000-05:002006-09-27T20:24:00.000-05:00Good question! I hadn't checked TorPark with them...Good question! I hadn't checked TorPark with them against GRC's ShieldsUp.<BR/><BR/>I just did a quick test and got full stealth from GRC on my Jetico system using the latest release of TorPark. I don't have time tonight to pull out the laptop and check it (running Sunbelt Kerio). (It did "fail" in that the IP provided by TorPark responded to the GRC ping test. That's not a fault of the firewall or TorPark, just how it is configured, but ports were stealthed.)<BR/><BR/>If I have more time this weekend I will try to repost with more details.<BR/><BR/>Glad you found the article useful.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1159383806345358812006-09-27T14:03:00.000-05:002006-09-27T14:03:00.000-05:00After you installed the Jetico and Sunbelt firewal...After you installed the Jetico and Sunbelt firewalls, did you test them with Steve Gibson's ShieldsUP while Torpark was running? I have ZoneAlarm installed and when I run Torpark, ShieldsUP Shows several open ports. When I use regular Firefox, ShieldsUP shows all the ports stealthed. This is what they said on the Torpark site: "The port scans that are going on are not really scanning you, but scanning the tor exit node. No worries." What do you think? Thanks for the great article.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1155050101480784002006-08-08T10:15:00.000-05:002006-08-08T10:15:00.000-05:00Hi martin,I never could figure out 100% what was w...Hi martin,<BR/><BR/>I never could figure out 100% what was wigging out ZoneAlarm when using TorPark. It only started happening after I had upgraded the version of ZoneAlarm. Older verions of TorPark had the same effect so it was something in ZoneAlarm itself. TorPark cycles the IP proxy address periodically. Maybe ZA couldn't keep up with the rotating proxy address changes. Didn't seem to harm anything, and would eventually get back on track, but that killed my confidence level.<BR/><BR/>Besides, as I posted, I think there are better solutions available now, besides just ZA.<BR/><BR/>Thanks for stopping by!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1155010278039967902006-08-07T23:11:00.000-05:002006-08-07T23:11:00.000-05:00nice article. what brought me here was zone alarm ...nice article. what brought me here was zone alarm shut down with torpack running. i googled my problem and came to ur page. i was aware of grc web page. i shut my firewall off and went to the pcaudit. like you, i think za free doesnt do as much as it once did. now i have to decide where to go from there, think ill look at those programs u listed here and give them a try, tnx martinAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1152569265604746802006-07-10T17:07:00.000-05:002006-07-10T17:07:00.000-05:00You must be really busy Simon.Where do you find th...You must be really busy Simon.<BR/><BR/>Where do you find the time?<BR/><BR/><A HREF="http://www.google.com/search?q=simon+scatt" REL="nofollow">http://www.google.com/search?q=simon+scatt</A>Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-13777170.post-1152487209922177372006-07-09T18:20:00.000-05:002006-07-09T18:20:00.000-05:00Grand Street has been great reading lately.I'm sti...Grand Street has been great reading lately.<BR/><BR/>I'm still not using a software firewall aside from what comes in XP SP2. I have a hardware firewall, a Linksys WRT54G, that DMZ's all incoming ports to a nonexistent IP, except for SSH/22 that goes to my linux box.<BR/><BR/>This article has given me something to think about, though, and I'm going to investigate using one of the programs you recommend.Anonymousnoreply@blogger.com